Vulnerabilities > CVE-2002-0299 - Remote Arbitrary Code Execution vulnerability in CNet CatchUp
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
CNet CatchUp before 1.3.1 allows attackers to execute arbitrary code via a .RVP file that creates a file with an arbitrary extension (such as .BAT), which is executed during a scan.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |